Differences between revisions 1 and 3 (spanning 2 versions)

DirtyFrag

It is a Linux local privilege escalation (LPE) named Dirty Frag. Combination of CVE-2026-43284 and CVE-2026-43500.

https://nvd.nist.gov/vuln/detail/CVE-2026-43284
https://www.cve.org/CVERecord?id=CVE-2026-43284
https://www.tenable.com/blog/dirty-frag-cve-2026-43284-cve-2026-43500-frequently-asked-questions-linux-kernel-lpe

Affected kernel modules seem to be esp4, esp6 and rxrpc.

Mitigation

   1 sudo bash
   2 sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; echo 3 > /proc/sys/vm/drop_caches; true"
   3 
   4 cat /etc/modprobe.d/dirtyfrag.conf

-  ⇤ ← Revision 1 as of 2026-05-09 10:12:51 → 
  Size: 551
  Editor: vitor
  Comment:
+   ← Revision 3 as of 2026-05-09 10:17:16 → ⇥
  Size: 713
  Editor: vitor
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 4:
+ * https://nvd.nist.gov/vuln/detail/CVE-2026-43284
-Line 7:
+Line 8:
+Affected kernel modules seem to be esp4, esp6 and rxrpc.
-Line 9:
+Line 12:
+sudo bash
-Line 10:
+Line 14:
+cat /etc/modprobe.d/dirtyfrag.conf